gr2m
commented
6 years ago ping @benschwarz
Open zeke opened 6 years ago
gr2m
commented
6 years ago ping @benschwarz
patcon
commented
6 years ago Trello Power-Ups don't actually allow privileged credential storage, just shared and private "visibility", but perhaps worth knowing about: https://developers.trello.com/reference/#get-set-custom-data
bkeepers
commented
6 years ago I would love if a GitHub App could:
reminder:<2017-04-20)
stale[bot]
commented
6 years ago Is this still causing friction? If so, please comment with any updates or addition details.
gr2m
commented
6 years ago oh boy it does this cause friction 😽
zeke
commented
6 years ago 💡 What about storing encrypted values in .github/config.yml that only a probot installation can decrypt?
Like Travis Encryption keys.
JasonEtco
commented
6 years ago What about storing encrypted values in .github/config.yml that only a probot installation can decrypt?
Adding the encrypted key to the file would be the tough part - you'd need some kind of UI to input the unencrypted key, then maybe the app could open a PR adding it?
gr2m
commented
6 years ago sounds like something I’d love to have built-in into Probot or an extension
benschwarz
commented
6 years ago @zeke, @JasonEtco - Encrypted values in .github/config.yml sounds like a good first step.
Although if the app had to request permissions for opening PRs to add it (but otherwise that app didn't need those permissions, it'd look a bit fishy to users).
benschwarz
commented
6 years ago Forgot to say, this is definitely something that causes friction. I could see a lot more applications successfully using probot if there were a github-side encryption service or something of that nature.
bkeepers
commented
6 years ago Here's an experiment with using the private key to encrypt secrets: https://gist.github.com/bkeepers/c52ab6854cd549457561e75dbad93744 (use at your own risk)
Gist
An experiment using a RSA private key to encrypt/decrypt secrets.
dessant
commented
6 years ago It seems the initial setup could be done by redirecting during installation, but how would the config key be updated by users after that?
stale[bot]
commented
6 years ago Is this still causing friction? If so, please comment with any updates or addition details.
zeke
commented
6 years ago Hi @stale. Yeah this issue is still relevant.
stale[bot]
commented
5 years ago Is this still causing friction? If so, please comment with any updates or addition details.
gr2m
commented
5 years ago a lot.
gr2m
commented
5 years ago I wonder why it got staled when the issue has a "pinned" label and stale is configured to ignore issues that have it? https://github.com/probot/.github/blob/da58fd987250c4d97307d740c632221d3d5b37db/.github/stale.yml#L8-L10
GitHub
Org-wide settings. Contribute to probot/.github development by creating an account on GitHub.
stale[bot]
commented
5 years ago Is this still causing friction? If so, please comment with any updates or addition details.
gr2m
commented
5 years ago It’s supported for actions, but major friction for apps
2rojan
commented
5 years ago For myself, I'm running my Probot out of a kube cluster, so I stored all of my secret bits in a kubernetes secret - but only because there wasn't any better way to do it. Would be kinda cool to see this move forward.
gr2m
commented
5 years ago I still hope that secrets will be made available to apps similar to how they are made available to actions :) Maybe in a similar way as the single file access, where you have to define explicitly which secrets the app gets access to. We will update this issue if there are any news on that
stale[bot]
commented
5 years ago Is this still causing friction? If so, please comment with any updates or addition details.
stale[bot]
commented
5 years ago Is this still causing friction? If so, please comment with any updates or addition details.
drgs
commented
4 years ago Is there any update regarding this issue?
zeke
commented
4 years ago GitHub Secrets are still only available in GitHub Actions, but not to GitHub Apps.
cc @jovel
Migrated from https://github.com/probot/ideas/issues/69